Double-click mbam-setup and follow the prompts to install the program.

At the end, be sure a checkmark is placed next to the following:

Launch Malwarebytes Anti-Malware

A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.

Click Finish.

On the Dashboard, click the 'Update Now >>' link

After the update completes Select > Settings > Detection and Protection > Enable Scan for rootkit and Under Non Malware Protection set both PUP and PUM to Treat detections as malware.

Now select > Scan > Threat scan > Scan now

When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.

In most cases, a restart will be required.

Wait for the prompt to restart the computer to appear, then click on Yes.

When the scan is completed from the main GUI click on History > Application Logs. Find your scan log, the date when run will identify it. Checkmark "select" box > then hit the "view" button. The history log window will open. At the bottom of that window are two options, "Copy to clipboard" and "Export"

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

Double-click to run it. When the tool opens click Yes to disclaimer.

Press Scan button.

It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.

The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

Some content of TEMP:====================C:\Users\FRED\AppData\Local\Temp\DseShExt-x64.dllC:\Users\FRED\AppData\Local\Temp\DseShExt-x86.dllC:\Users\FRED\AppData\Local\Temp\FP_PL_MSI_INSTALLER.exeC:\Users\FRED\AppData\Local\Temp\Gw2.exeC:\Users\FRED\AppData\Local\Temp\nvSCPAPI.dllC:\Users\FRED\AppData\Local\Temp\nvSCPAPI64.dllC:\Users\FRED\AppData\Local\Temp\nvStInst.exeC:\Users\FRED\AppData\Local\Temp\Quarantine.exeC:\Users\FRED\AppData\Local\Temp\Runner2.exeC:\Users\FRED\AppData\Local\Temp\Runner4.exeC:\Users\FRED\AppData\Local\Temp\SDShelEx-win32.dllC:\Users\FRED\AppData\Local\Temp\SDShelEx-x64.dllC:\Users\FRED\AppData\Local\Temp\sqlite3.dllC:\Users\FRED\AppData\Local\Temp\SRLDetectionLibrary1376303839891597096.dllC:\Users\FRED\AppData\Local\Temp\ttv.exe

CodeIntegrity Errors:=================================== Date: 2015-02-18 15:18:39.627 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-02-18 15:18:39.583 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into.NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

Right-click on icon and select Run as Administrator to install the scanner.

It will ask for the location - leave the default one (%ProgramFiles%) or select another, convenient one.

Agree to the terms, select Launch herdProtect and click Finish.

Click Scan. It may take a while, depending on your system and connection specs. Please be patient.

When it finishes click on Save Results.

A Notepad with a report should open.

Please include the contents of that report in your next reply.

This type of scan often produces false positives. In any case do not remove on your own any of its findings! Removal will be made after the careful analysis of the scan results.Upon completion of the cleaning you may remove HerdProtect if you wish so. To do it just delete its directory (chosen by you when installing the tool).

Next,

Open Malwarebytes Anti-Malware, from the Dashboard please Check for Updates by clicking the Update Now... linkWhen the update completes select > Settings > Detection and Protection > Enable Scan for rootkit and Under Non Malware Protection set both PUP and PUM to Treat detections as malware.

Click on the SCAN button and run a Threat Scan with Malwarebytes Anti-Malware by clicking the Scan Now>> button.

When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.

In most cases, a restart will be required.

Wait for the prompt to restart the computer to appear, then click on Yes.

When the scan is completed from the main GUI click on History > Application Logs. Find your Scan log, the date when run will identify it. Checkmark "select" box > then hit the "view" button. The history log window will open. At the bottom of that window are two options, "Copy to clipboard" and "Export" Select > "Copy to clipboard" that copies the full log to the windows clipboard, so at your reply you right click into the text field and select "Paste" the log is pasted (copied) to your reply.

Save it to your Desktop. (If your security alerts either accept the alert, or turn the security off while Secuirity Check runs)Double click SecurityCheck.exe (Vista or Windows 7/8 users right click and select "Run as Administrator") and follow the onscreen instructions inside of the black box. Press any key when asked.A Notepad document should open automatically called checkup.txt; please post the contents of that document.

If Security Check will not run or you get an alert saying it is not supported, Re-boot your PC then try again...

Post those logs, also let me know if you have any remaining issues or concerns...

I'm trying hard to find the attached fixlist.txt. I've searched high and low all over your post but with no avail.

Anyhow, the symptoms of a the problems (in the following sequence) are that:Google Chrome freezes > after 10secs > Internet connectivity becomes limited (yellow exclamation mark on my Wi-fi notification icon > I have to restart comp but stuck at shutting down screem.Manual shutdown via power button > back to normal.

As for the herdProtect scan, I have yet to remove the 15 detections. Would I be able to do so now?

Quote from you "This type of scan often produces false positives. In any case do not remove on your own any of its findings! Removal will be made after the careful analysis of the scan results.Upon completion of the cleaning you may remove HerdProtect if you wish so. To do it just delete its directory (chosen by you when installing the tool)."

Double click OTM.exe to start the tool. Vista or Windows 7 users accepy UAC alert. Be aware all processes will be stopped during run, also Desktop will disappear, this will be put back on completion.... If your security alerts to OTM either, accept the alert or turn off security until OTM completes...

Copy the text from the code box belowbelow to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy). Ensure to start with and include the colon before Files :Files

Return to OTMoveIt3, right click in the "Paste Instructions for Items to be Moved" window (under the yellow bar) and choose Paste.

Click the red button.

Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.

Close OTM

Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

If the machine reboots, the Results log can be found here:

c:\_OTMoveIt\MovedFiles\mmddyyyy_hhmmss.log

Where mmddyyyy_hhmmss is the date of the tool run.

Next,

Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system.Please follow these steps to remove older version of Java components and upgrade the application.

Upgrading Java:

Go to http://java.com/en/ and click on "Do I have Java"It will check your current version and then offer to update to the latest versionWatch for and make sure you untick the box next to whatever free program they prompt you to install during the installation, unless you want it.

***Note: Check in Programs and Features (or Add/Remove Programs if you are an XP user) to make certain there are no old versions of Java still installed, if so - remove them. <<-- Very Important

Post log from OTM, also let me know if there are any remaining issues or concerns...

By the way, thank you so much for your advice and help. I feel alot better than I did before I came by this website.

I'm not sure if this would help but these were the errors on my event log the last time it had all 3 symptoms. I opened this up straight after windows restarted with "Windows has recovered from an unexpected shutdown."

Please download this program Blue Screen Viewer and unzip "Bluescreen View.exe" to your desktop.Next, Select Start > Right click on "Computer" and select "Properties" select "Advanced System Settings" then "Advanced" tab. From the "Start up and Recovery" section select "settings" make sure the default folder is "%SystemRoot%\Minidump".Go back to your desktop and double click on Bluescreen Viewer to run it, if there is any info available the program will grab the most recent. Choose save from the Toolbar and copy paste to your next reply. If there is no information available try and re-create the BSOD and try again with the tool to collect the information.